Archive | March, 2012


29 March 2012 | 1,808 views

Avira Joins The Crowd & Starts To Offer Mac Antivirus Software

For years the Apple geeks were always self-praising and postulating that their OS was so secure and superior that it didn’t need any silly Anti Virus software. Things changed a couple of years back though, probably in 2009 when Mac OS X Snow Leopard Bundled With Malware Detector. Not long after that the commercial crowd [...]

Continue Reading


26 March 2012 | 4,571 views

SSLyze v0.4 Released – Scan & Analyze SSL Server Configuration

SSLyze is a Fast and Full-Featured SSL Scanner – it enables Better, faster scanning to analyze the configuration of SSL servers. Supports cipher suites scanning, insecure renegotiation verification, session resumption testing, client certificates, and more. Tested on Python 2.6 & 2.7 with Ubuntu and Windows 7, both 32 and 64 bits. Might work on other [...]

Continue Reading


21 March 2012 | 6,347 views

eLearnSecurity Launches Newly Updated & Refreshed Penetration Testing Professional Training v2

Introduction It’s been a while since we’ve mentioned this course, of course since we mentioned it back in May 2010 – eLearnSecurity – Online Penetration Testing Training – eLearnSecurity has been making continuous improvements to the course-ware and the subject matter. But now in 2012, it’s time for them to release their major facelift – [...]

Continue Reading


19 March 2012 | 8,472 views

MS12-020 RDP Exploit Code In The Wild

The big news that erupted towards the end of last week was about the latest pretty serious vulnerability patched quietly by Microsoft, AKA MS12-020 (which plenty of people are using to bait skiddies into downloading dodgy code). The flaw is in the RDP (Remote Desktop Protocol) service – which is a pretty bad service to [...]

Continue Reading


16 March 2012 | 5,353 views

backfuzz – Multi-Protocol Fuzzing Toolkit (Supports HTTP/FTP/IMAP etc)

backfuzz is a fuzzing tool for different protocols (FTP, HTTP, IMAP, etc) but also has no-protocol plug-ins (Example: File Fuzzer). The general idea is that this script has several functions already predefined in the file “functions.py”, so whoever wants to write their own plugin’s (for another protocol) you can do so in a few lines [...]

Continue Reading


12 March 2012 | 5,223 views

Former LulzSec Leader Sabu Flips Sides & Informs For The FBI

This is pretty epic, the big buzz last week was all about Sabu and how he was a traitor to LulzSec and Anonymous. Now most people think things like these only happen in the movies, secret arrests followed by strong-arm tactics to make the perp turn and be an informant for the feds. Sounds like [...]

Continue Reading


07 March 2012 | 7,951 views

Goofile v1.5 – Search For A Specific File Type In A Given Domain.

Use this tool to search for a specific file type in a given domain – inspired by TheHarvester. Usage

-d: domain to search -f: filetype (ex. pdf) Written in Python and tested on 2.5 and 2.7. Please submit any bug reports or requests to the author. You can download Goofile v1.5 here: goofilev1.5.zip Or [...]

Continue Reading


05 March 2012 | 8,607 views

Hacker On Hacker Action – Zeus Botmaster Targets Anonymous Supporters

It somehow reminds me of the oldskool game Spy vs Spy, anyone remember that? Anyhow, that’s off-topic right now. The news is, some smart malware pimp managed to dupe a whole bunch of Anonymous supporters into installing the Zeus botnet – when they thought they were getting a DDoS tool. It’s a pretty big base [...]

Continue Reading